Skip to main content

What

helmper is a Helm Chart analyzer that reads Helm Charts from remote OCI registries and pushes the charts container images to your registries with optional OS level vulnerability patching.

helmper provides an interface to reduce the maintenance burden associated with managing a large collection of Helm Charts by:

  • automatically detecting all enabled container images in charts by examine the charts values
  • providing an easy way to stay up to date on new chart releases through a repeatable and fast process
  • providing option to only import new images - or all images
  • enabling quick patching of OS level vulnerabilities in container images
  • enabling signing of images as an integrated part of the process
  • providing a mechanism to check dependencies are met before deploying charts with fx GitOps

helmper is built with Helm, Oras, Trivy, Copacetic (Buildkit) and Cosign.